Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/bjhf4ZEZHNrhJDtenrCB1qxyPLo.roa
File: bjhf4ZEZHNrhJDtenrCB1qxyPLo.roa (raw, json)
Hash identifier: I3OdileS1iY0+NIQCIx+XEZ7TYwfBUVxSWgEPWubY7g=
Subject key identifier: 6E:38:5F:E1:91:19:1C:DA:E1:24:3B:5E:9E:B0:81:D6:AC:72:3C:BA
Certificate issuer: /CN=0692c5f16313653425bc467105875e3a297cff9b
Certificate serial: 018B672BF53DC3A37B3DF2F8993520934286
Authority key identifier: 06:92:C5:F1:63:13:65:34:25:BC:46:71:05:87:5E:3A:29:7C:FF:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BpLF8WMTZTQlvEZxBYdeOil8_5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/bjhf4ZEZHNrhJDtenrCB1qxyPLo.roa
Signing time: Wed 25 Oct 2023 14:10:15 +0000
ROA not before: Wed 25 Oct 2023 14:10:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 52000
IP address blocks: 77.91.127.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:67:2b:f5:3d:c3:a3:7b:3d:f2:f8:99:35:20:93:42:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0692c5f16313653425bc467105875e3a297cff9b
Validity
Not Before: Oct 25 14:10:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6e385fe191191cdae1243b5e9eb081d6ac723cba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:1c:75:fa:24:ad:e2:b4:ed:f4:ee:c7:62:4f:
12:7d:77:61:d3:71:84:91:33:44:58:0a:55:1d:ff:
16:7d:ba:aa:44:a2:77:86:14:f2:c6:35:f4:93:50:
f1:b1:5d:59:28:0c:f5:18:84:1d:4e:c0:f1:df:4b:
a4:40:f9:a6:da:1b:d9:c8:08:42:90:ea:d0:7f:15:
d3:52:a2:a3:ec:57:65:40:26:08:97:4c:cf:88:07:
bc:34:54:7f:78:46:cd:bb:5f:78:53:02:3c:24:cb:
5a:62:34:e7:6c:c2:33:35:06:7b:55:ac:10:27:ef:
5f:92:2b:8a:ea:98:dc:ce:fd:b1:8e:ff:f0:92:21:
03:70:ab:3f:7d:39:bd:83:10:af:42:64:d1:7a:dc:
ca:b4:d5:c5:a7:03:e2:44:a7:3f:6f:16:05:0e:f5:
f8:e1:db:78:55:cb:62:29:91:8c:a7:ef:25:79:99:
95:19:13:c4:1d:a2:03:08:4b:19:88:a2:aa:7f:90:
46:e5:08:fc:81:67:ef:07:bc:a9:06:ac:2d:85:62:
44:0c:5d:66:59:57:20:ea:b1:d6:38:1b:97:0a:ec:
1f:a5:22:cc:1c:5c:e6:f1:9f:97:78:0b:2b:2a:55:
76:db:d4:c8:80:95:1f:11:94:cb:a8:34:4e:3c:c5:
21:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:38:5F:E1:91:19:1C:DA:E1:24:3B:5E:9E:B0:81:D6:AC:72:3C:BA
X509v3 Authority Key Identifier:
keyid:06:92:C5:F1:63:13:65:34:25:BC:46:71:05:87:5E:3A:29:7C:FF:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BpLF8WMTZTQlvEZxBYdeOil8_5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/bjhf4ZEZHNrhJDtenrCB1qxyPLo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/BpLF8WMTZTQlvEZxBYdeOil8_5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.91.127.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:e0:84:2b:cf:5c:dc:40:ca:8b:20:86:1f:d2:69:9c:f0:51:
06:3c:fe:75:bd:bd:31:e6:f5:41:4b:41:a7:83:9c:10:66:40:
72:be:13:28:1a:de:d7:29:02:76:53:11:0a:d3:11:f6:a7:c8:
6b:14:b9:00:5f:da:d1:11:37:71:34:f0:cf:60:f3:7d:b8:f6:
d2:e6:18:c8:5e:3f:23:65:a5:d4:6e:f2:29:9c:dd:40:29:46:
66:30:38:a5:58:27:72:f8:0b:d9:eb:56:9d:ce:4c:bc:83:b5:
20:e8:96:82:a5:4e:10:f7:b4:4d:84:a1:ca:a7:47:e6:de:9f:
68:02:c5:9e:09:01:14:ea:88:74:71:94:48:ed:8e:4a:37:8d:
c4:aa:44:ee:f6:2d:ca:cb:79:6e:62:d2:00:7d:a6:40:ac:23:
71:5b:c1:0c:23:8c:2d:cd:36:52:a2:df:d7:e0:9d:25:dc:0c:
e5:b0:af:c4:5a:2d:ae:e6:fa:4f:8f:71:22:99:03:1b:6a:3e:
dd:c6:10:cd:19:19:4c:c0:f6:1a:0a:04:0e:b7:5f:ec:9c:0b:
55:d5:9d:d1:90:af:a5:f4:2e:03:05:c2:68:92:14:b4:e4:8a:
c2:57:eb:d0:e1:4f:e6:fd:48:7b:eb:91:cc:58:06:16:e6:01:
43:fe:e3:d7
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYtnK/U9w6N7PfL4mTUgk0KGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA2OTJjNWYxNjMxMzY1MzQyNWJjNDY3MTA1ODc1ZTNhMjk3
Y2ZmOWIwHhcNMjMxMDI1MTQxMDE1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2ZTM4NWZlMTkxMTkxY2RhZTEyNDNiNWU5ZWIwODFkNmFjNzIzY2JhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAohx1+iSt4rTt9O7HYk8SfXdh03GE
kTNEWApVHf8WfbqqRKJ3hhTyxjX0k1DxsV1ZKAz1GIQdTsDx30ukQPmm2hvZyAhC
kOrQfxXTUqKj7FdlQCYIl0zPiAe8NFR/eEbNu194UwI8JMtaYjTnbMIzNQZ7VawQ
J+9fkiuK6pjczv2xjv/wkiEDcKs/fTm9gxCvQmTRetzKtNXFpwPiRKc/bxYFDvX4
4dt4VctiKZGMp+8leZmVGRPEHaIDCEsZiKKqf5BG5Qj8gWfvB7ypBqwthWJEDF1m
WVcg6rHWOBuXCuwfpSLMHFzm8Z+XeAsrKlV229TIgJUfEZTLqDROPMUh9QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFG44X+GRGRza4SQ7Xp6wgdascjy6MB8GA1UdIwQY
MBaAFAaSxfFjE2U0JbxGcQWHXjopfP+bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQnBMRjhXTVRaVFFsdkVaeEJZZGVPaWw4XzVzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS83Nzk5MjgtODgxYy00MzNhLWIyNDMt
YzlmNTdlOTU5ZWYxLzEvYmpoZjRaRVpITnJoSkR0ZW5yQ0IxcXh5UExvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYS83Nzk5MjgtODgxYy00MzNhLWIyNDMtYzlmNTdlOTU5ZWYx
LzEvQnBMRjhXTVRaVFFsdkVaeEJZZGVPaWw4XzVzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQATVt/MA0G
CSqGSIb3DQEBCwUAA4IBAQCl4IQrz1zcQMqLIIYf0mmc8FEGPP51vb0x5vVBS0Gn
g5wQZkByvhMoGt7XKQJ2UxEK0xH2p8hrFLkAX9rRETdxNPDPYPN9uPbS5hjIXj8j
ZaXUbvIpnN1AKUZmMDilWCdy+AvZ61adzky8g7Ug6JaCpU4Q97RNhKHKp0fm3p9o
AsWeCQEU6oh0cZRI7Y5KN43EqkTu9i3Ky3luYtIAfaZArCNxW8EMI4wtzTZSot/X
4J0l3AzlsK/EWi2u5vpPj3EimQMbaj7dxhDNGRlMwPYaCgQOt1/snAtV1Z3RkK+l
9C4DBcJokhS05IrCV+vQ4U/m/Uh765HMWAYW5gFD/uPX
-----END CERTIFICATE-----
Generated at Tue Jan 2 17:34:09 2024 by rpki-client on console-fra.rpki-client.org